Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

Hosts file ignored; OWA publishing on ISA 2004, Windows Server 2003

Posted on 2008-11-20
5
Medium Priority
?
680 Views
Last Modified: 2012-05-05
Hello,

I'm trying to publish an Exchange 2000 server behind an ISA server 2004 using SSL.
I have configured everything including the certificates as per this article:

http://www.isaserver.org/articles/2004pubowartm.html

However I am unable to get the hosts file entry on the ISA server to work correctly. The article recommends this entry and the reason for this is:

"The ISA firewall must be able to resolve the name used by remote users connecting to the OWA site through the ISA firewall to the IP address of the OWA site on the corporate network. The ISA firewall must NOT resolve this name to the IP address on the external interface of the ISA firewall."

For some reason my hosts file is being ignored and the ISA server is resolving the OWA URL to the IP associated with the external adapter, not the internal exchange server that I have specified in the hosts file. Pinging the OWA URL from the ISA console resolves and replies from the ISA's external interface.  OWA is working correctly internally. Externally entering the OWA URL into a browser gives me a warning about a certificate from an currently untrusted source (which I would anticipate) and then when I choose to continue returns the error:

"
Error Code: 500 Internal Server Error. Internet Control Message Protocol (ICMP) network is unreachable. For more information about this event, see ISA Server Help
"

I'm not sure if this could be a factor; but the ISA's external adapter is attached to a cable modem,  and it has to obtain its IP address from the cable modem automatically. However the ip address, gateway and other information the modem hand out always remain the same.

I realise that this is an unusal setup, but this an ISP limitation with their static IP service.
Regardless, ISA has been functioning correctly using this configuration and is supporting several VPN tunnels and other publishing rules without issue.

Details:
ISA Server 2004 running on Windows 2003
Exchange 2000 Running on Windows 2000 SP4


Please can anyone help?

thanks in advance.
0
Comment
Question by:thinkjim
  • 3
  • 2
5 Comments
 
LVL 10

Expert Comment

by:Kieran_Burns
ID: 23002754
The ISA Server will check cache before checking HOSTS
If you run ipconfig /flushdns or just reboot it should cure the issue
0
 

Author Comment

by:thinkjim
ID: 23002769
Hi,

Yes I have already tried flushing the DNS and also rebooting, to no effect :(
0
 
LVL 10

Accepted Solution

by:
Kieran_Burns earned 2000 total points
ID: 23002781
Please forgive me for asking these questions (!) but it's eliminate the obvious before getting complicated time.
The HOSTS file is just HOSTS and not HOSTS.SAM?
It is in the c:\<windir>\system32\drivers\etc folder?
You have used the syntax
<ip_addr> <tab> <hostname>
The hostname is JUST the netbios name and not the FQDN?
there's no # or other comment symbol in the hosts file
 
Again - sorry for the obvious micky mouse stuff, but sometimes it's worth checking!
 
Oh, if you type drivers in Start,run it gets you to the folder much more quickly.
0
 

Author Comment

by:thinkjim
ID: 23002867
Hi Kieran,

thanks for your help. I think I was having a moment of clinical insanity. I'm a sysadmin so I should know better!

Having rebooted the machine, cleared out the hosts file etc, it all seems to be working properly now. Thank you for your help.

Cheers
 
0
 
LVL 10

Expert Comment

by:Kieran_Burns
ID: 23002879
We all do! :-)
Sometimes, it's worth just posting up to clarify our own thoughts. It's actually why I sometimes reply with the "back to basics" statements.
Glad it's sorted
0

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Eseutil Hard Recovery is part of exchange tool and ensures Exchange mailbox data recovery when mailbox gets corrupt due to some problem on Exchange server.
Microsoft Jet database engine errors can crop up out of nowhere to disrupt the working of the Exchange server. Decoding why a particular error occurs goes a long way in determining the right solution for it.
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…
Suggested Courses

571 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question